<?php

namespace App\Http\Middleware;

use Illuminate\Foundation\Http\Middleware\VerifyCsrfToken as Middleware;

class VerifyCsrfToken extends Middleware
{
    /**
     * Indicates whether the XSRF-TOKEN cookie should be set on the response.
     *
     * @var bool
     */
    protected $addHttpCookie = true;

    /**
     * The URIs that should be excluded from CSRF verification.
     * post接口 免token验证
     * @author yhs 2019.07.24
     * @var array
     */
    protected $except = [
        'admin/captcha',
        'admin/login',
        'admin/updataPwd',
        'admin/structureAdd',
        'admin/adminsAdd',

        'admin/roleadd',
        'admin/menuadd',
        'admin/subMenuAdd',
        'admin/apiadd',
        'admin/apilist',
    ];
}
